CN101681407B - 用于恶意软件检测的可信操作环境 - Google Patents

用于恶意软件检测的可信操作环境 Download PDF

Info

Publication number: CN101681407B
Authority: CN; China
Prior art keywords: computing device; removable; operating system; updates; virus
Prior art date: 2007-05-11
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.): Active

Application number

CN2008800153230A

Other languages

English (en)

Chinese (zh)

Other versions

CN101681407A (zh

Inventor

R·基尔纳尼

K·N·艾弗森

Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)

Microsoft Technology Licensing LLC

Original Assignee

Microsoft Corp

Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)

2007-05-11

Filing date

2008-05-02

Publication date

2013-05-22

2008-05-02 Application filed by Microsoft Corp filed Critical Microsoft Corp

2010-03-24 Publication of CN101681407A publication Critical patent/CN101681407A/zh

2013-05-22 Application granted granted Critical

2013-05-22 Publication of CN101681407B publication Critical patent/CN101681407B/zh

Status Active legal-status Critical Current

2028-05-02 Anticipated expiration legal-status Critical

Links

Images

Classifications

- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/567—Computer malware detection or handling, e.g. anti-virus arrangements using dedicated hardware
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/575—Secure boot

Landscapes

Engineering & Computer Science (AREA)
Computer Security & Cryptography (AREA)
Computer Hardware Design (AREA)
General Engineering & Computer Science (AREA)
Software Systems (AREA)
Theoretical Computer Science (AREA)
General Physics & Mathematics (AREA)
Physics & Mathematics (AREA)
Health & Medical Sciences (AREA)
General Health & Medical Sciences (AREA)
Virology (AREA)
Stored Programmes (AREA)
Storage Device Security (AREA)

CN2008800153230A 2007-05-11 2008-05-02 用于恶意软件检测的可信操作环境 Active CN101681407B (zh)

Applications Claiming Priority (3)

Application Number	Priority Date	Filing Date	Title
US11/747,416 US7853999B2 (en)	2007-05-11	2007-05-11	Trusted operating environment for malware detection
US11/747,416		2007-05-11
PCT/US2008/062513 WO2008140977A1 (en)	2007-05-11	2008-05-02	Trusted operating environment for malware detection

Publications (2)

Publication Number	Publication Date
CN101681407A CN101681407A (zh)	2010-03-24
CN101681407B true CN101681407B (zh)	2013-05-22

Family

ID=39970763

Family Applications (1)

Application Number	Title	Priority Date	Filing Date
CN2008800153230A Active CN101681407B (zh)	2007-05-11	2008-05-02	用于恶意软件检测的可信操作环境

Country Status (5)

Country	Link
US (2)	US7853999B2 (de)
EP (1)	EP2156357B1 (de)
JP (1)	JP2010527075A (de)
CN (1)	CN101681407B (de)
WO (1)	WO2008140977A1 (de)

Families Citing this family (40)

* Cited by examiner, † Cited by third party
Publication number	Priority date	Publication date	Assignee	Title
JP4770306B2 (ja) *	2005-07-12	2011-09-14	日本電気株式会社	端末セキュリティチェックサービス提供方法及びそのシステム
DE102006031870B4 (de) *	2006-06-01	2008-07-31	Siemens Ag	Verfahren und System zum Bereitstellen eines Mobile IP Schlüssels
US8234710B2 (en) *	2006-07-05	2012-07-31	BB4 Solutions, Inc.	Malware automated removal system and method using a diagnostic operating system
US8266692B2 (en) *	2006-07-05	2012-09-11	Bby Solutions, Inc.	Malware automated removal system and method
US8104088B2 (en) *	2007-05-11	2012-01-24	Microsoft Corporation	Trusted operating environment for malware detection
US9251350B2 (en) *	2007-05-11	2016-02-02	Microsoft Technology Licensing, Llc	Trusted operating environment for malware detection
WO2009032446A1 (en) *	2007-08-01	2009-03-12	Devicevm, Inc.	Diagnostic virtual appliance
CN101256608B (zh) *	2008-03-25	2010-04-07	北京飞天诚信科技有限公司	安全操作方法和系统
US8312547B1 (en) *	2008-03-31	2012-11-13	Symantec Corporation	Anti-malware scanning in a portable application virtualized environment
US7865561B2 (en) *	2008-04-01	2011-01-04	Mcafee, Inc.	Increasing spam scanning accuracy by rescanning with updated detection rules
US8484736B2 (en) *	2008-06-06	2013-07-09	Sandisk Il Ltd.	Storage device having an anti-malware protection
US8918872B2 (en) *	2008-06-27	2014-12-23	Mcafee, Inc.	System, method, and computer program product for reacting in response to a detection of an attempt to store a configuration file and an executable file on a removable device
KR100980606B1 (ko) *	2008-09-08	2010-09-07	주식회사 하이닉스반도체	워드라인 구동회로 및 구동방법
CN101408846B (zh) *	2008-11-24	2011-04-13	华为终端有限公司	一种杀毒软件升级的方法及相应的终端和系统
CA2686796C (en)	2008-12-03	2017-05-16	Trend Micro Incorporated	Method and system for real time classification of events in computer integrity system
US20100154062A1 (en) *	2008-12-16	2010-06-17	Elad Baram	Virus Scanning Executed Within a Storage Device to Reduce Demand on Host Resources
US8402544B1 (en)	2008-12-22	2013-03-19	Trend Micro Incorporated	Incremental scanning of computer files for malicious codes
US8544092B2 (en) *	2009-03-12	2013-09-24	International Business Machines Corporation	Integrity verification using a peripheral device
US20100251372A1 (en) *	2009-03-24	2010-09-30	Barracuda Networks, Inc	Demand scheduled email virus afterburner apparatus, method, and system
US8869282B1 (en) *	2009-10-15	2014-10-21	American Megatrends, Inc.	Anti-malware support for firmware
US9087188B2 (en) *	2009-10-30	2015-07-21	Intel Corporation	Providing authenticated anti-virus agents a direct access to scan memory
US8910288B2 (en) *	2010-02-05	2014-12-09	Leidos, Inc	Network managed antivirus appliance
KR101089023B1 (ko) *	2010-08-06	2011-12-01	삼성에스디에스 주식회사	스마트 카드, 및 이를 이용한 안티-바이러스 시스템 및 스캐닝 방법
EP2447859B1 (de) *	2010-11-01	2015-04-08	Kaspersky Lab, ZAO	System und Verfahren zur Beschleunigung der Malware-Erkennung mit einem Antivirus-Zwischenspeicher
JP2012103950A (ja) *	2010-11-11	2012-05-31	Buffalo Inc	情報処理装置に接続される記憶装置のコンピュータウィルス監視
US8898789B2 (en) *	2011-06-14	2014-11-25	Honeywell International Inc.	Detecting malicious software on a computing device with a mobile device
US8635698B2 (en) *	2011-10-07	2014-01-21	Imation Corp.	Antivirus system and method for removable media devices
US9058504B1 (en) *	2013-05-21	2015-06-16	Malwarebytes Corporation	Anti-malware digital-signature verification
CN103390131A (zh) *	2013-07-29	2013-11-13	无锡华御信息技术有限公司	基于集成flash闪存的电子钥匙的单机安全检查系统
US9582665B2 (en) *	2014-01-21	2017-02-28	Operation and Data integrity Ltd.	Technologies for protecting systems and data to prevent cyber-attacks
US20160180092A1 (en) *	2014-12-23	2016-06-23	Mcafee, Inc.	Portable secure storage
RU2601148C1 (ru)	2015-06-30	2016-10-27	Закрытое акционерное общество "Лаборатория Касперского"	Система и способ выявления аномалий при подключении устройств
US10546131B2 (en)	2015-10-22	2020-01-28	Mcafee, Llc	End-point visibility
RU2639666C2 (ru) *	2016-04-25	2017-12-21	Акционерное общество "Лаборатория Касперского"	Удаление следов вредоносной активности из операционной системы, которая в настоящий момент не загружена на компьютерном устройстве
RU2638735C2 (ru) *	2016-04-25	2017-12-15	Акционерное общество "Лаборатория Касперского"	Система и способ оптимизации антивирусной проверки неактивных операционных систем
US10264002B2 (en)	2016-07-14	2019-04-16	Mitsui Bussan Secure Directions, Inc.	Program, information processing device, and information processing method
US20180063179A1 (en) *	2016-08-26	2018-03-01	Qualcomm Incorporated	System and Method Of Performing Online Memory Data Collection For Memory Forensics In A Computing Device
CN112651020A (zh) *	2020-12-15	2021-04-13	网神信息技术（北京）股份有限公司	威胁检测方法、装置、外接设备、电子设备、介质和程序
US12513525B2 (en) *	2023-07-21	2025-12-30	Lenovo (Singapore) Pte. Ltd.	Device modification state validation
US12593213B2 (en) *	2023-10-10	2026-03-31	Dell Products L.P.	Detection and mitigation plan for the external threats on 5G network/devices while using network functions virtualization (NFV)

Citations (1)

* Cited by examiner, † Cited by third party
Publication number	Priority date	Publication date	Assignee	Title
US7184554B2 (en) *	2000-08-31	2007-02-27	F-Secure Oyj	Wireless device management

Family Cites Families (27)

* Cited by examiner, † Cited by third party
Publication number	Priority date	Publication date	Assignee	Title
US6035423A (en)	1997-12-31	2000-03-07	Network Associates, Inc.	Method and system for providing automated updating and upgrading of antivirus applications using a computer network
US7930531B2 (en)	2000-01-06	2011-04-19	Super Talent Electronics, Inc.	Multi-partition USB device that re-boots a PC to an alternate operating system for virus recovery
US6973577B1 (en)	2000-05-26	2005-12-06	Mcafee, Inc.	System and method for dynamically detecting computer viruses through associative behavioral analysis of runtime state
US7043757B2 (en)	2001-05-22	2006-05-09	Mci, Llc	System and method for malicious code detection
US7243373B2 (en) *	2001-07-25	2007-07-10	Mcafee, Inc.	On-access malware scanning
US7188369B2 (en)	2002-10-03	2007-03-06	Trend Micro, Inc.	System and method having an antivirus virtual scanning processor with plug-in functionalities
EP1578066A1 (de) *	2002-12-11	2005-09-21	Mitsui & Co., Ltd.	Kommunikationssystem, kommunikationsendgerät mit virtuellem netzwerkumschalter und tragbares elektronisches gerät mit organismuserkennungseinheit
US20040254978A1 (en)	2003-06-12	2004-12-16	International Business Machines Corporation	System and method of remotely accessing a computer system to initiate remote mainteneance and management accesses on network computer systems
US20050015606A1 (en)	2003-07-17	2005-01-20	Blamires Colin John	Malware scanning using a boot with a non-installed operating system and download of malware detection files
US20050091558A1 (en)	2003-10-28	2005-04-28	International Business Machines Corporation	System, method and program product for detecting malicious software
KR20050080664A (ko)	2004-02-10	2005-08-17	주식회사 팬택앤큐리텔	무선통신단말기를 이용한 컴퓨터 바이러스 치료 시스템 및그 방법
US7555568B2 (en)	2004-02-28	2009-06-30	Huang Evan S	Method and apparatus for operating a host computer from a portable apparatus
US7840763B2 (en)	2004-03-12	2010-11-23	Sca Technica, Inc.	Methods and systems for achieving high assurance computing using low assurance operating systems and processes
US7370188B2 (en) *	2004-05-17	2008-05-06	Intel Corporation	Input/output scanning
US7627898B2 (en)	2004-07-23	2009-12-01	Microsoft Corporation	Method and system for detecting infection of an operating system
KR100713128B1 (ko)	2004-11-08	2007-05-02	주식회사 비젯	바이러스 방역 장치 및 시스템
KR101201118B1 (ko) *	2004-11-08	2012-11-13	마이크로소프트 코포레이션	바이러스 방지 소프트웨어 어플리케이션들의 지식 베이스를모으는 시스템 및 방법
US7673341B2 (en)	2004-12-15	2010-03-02	Microsoft Corporation	System and method of efficiently identifying and removing active malware from a computer
US20060253908A1 (en) *	2005-05-03	2006-11-09	Tzu-Jian Yang	Stateful stack inspection anti-virus and anti-intrusion firewall system
US7239166B2 (en) *	2005-06-15	2007-07-03	Microsoft Corporation	Portable multi-purpose toolkit for testing computing device hardware and software
KR20070016029A (ko)	2005-08-02	2007-02-07	최성필	컴퓨터 보안 기능을 제공하는 휴대용 ｕｓｂ 저장 장치 및상기 휴대용 ｕｓｂ 저장 장치의 동작 방법
US20070094654A1 (en)	2005-10-20	2007-04-26	Microsoft Corporation	Updating rescue software
US7877801B2 (en) *	2006-05-26	2011-01-25	Symantec Corporation	Method and system to detect malicious software
US8234710B2 (en) *	2006-07-05	2012-07-31	BB4 Solutions, Inc.	Malware automated removal system and method using a diagnostic operating system
US8335931B2 (en) *	2008-06-20	2012-12-18	Imation Corp.	Interconnectable personal computer architectures that provide secure, portable, and persistent computing environments
US9098698B2 (en) *	2008-09-12	2015-08-04	George Mason Research Foundation, Inc.	Methods and apparatus for application isolation
US20100332593A1 (en) *	2009-06-29	2010-12-30	Igor Barash	Systems and methods for operating an anti-malware network on a cloud computing platform

2007
- 2007-05-11 US US11/747,416 patent/US7853999B2/en active Active
2008
- 2008-05-02 WO PCT/US2008/062513 patent/WO2008140977A1/en not_active Ceased
- 2008-05-02 CN CN2008800153230A patent/CN101681407B/zh active Active
- 2008-05-02 EP EP08747558.8A patent/EP2156357B1/de active Active
- 2008-05-02 JP JP2010507569A patent/JP2010527075A/ja active Pending
2010
- 2010-12-10 US US12/964,889 patent/US8230511B2/en active Active

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number	Priority date	Publication date	Assignee	Title
US7184554B2 (en) *	2000-08-31	2007-02-27	F-Secure Oyj	Wireless device management

Also Published As

Publication number	Publication date
US8230511B2 (en)	2012-07-24
US7853999B2 (en)	2010-12-14
US20110078796A1 (en)	2011-03-31
US20080282351A1 (en)	2008-11-13
EP2156357A4 (de)	2012-02-01
WO2008140977A1 (en)	2008-11-20
JP2010527075A (ja)	2010-08-05
EP2156357B1 (de)	2018-04-25
CN101681407A (zh)	2010-03-24
EP2156357A1 (de)	2010-02-24

Legal Events

Date	Code	Title	Description
2010-03-24	C06	Publication
2010-03-24	PB01	Publication
2010-05-05	C10	Entry into substantive examination
2010-05-05	SE01	Entry into force of request for substantive examination
2013-05-22	C14	Grant of patent or utility model
2013-05-22	GR01	Patent grant
2015-05-20	ASS	Succession or assignment of patent right	Owner name: MICROSOFT TECHNOLOGY LICENSING LLC Free format text: FORMER OWNER: MICROSOFT CORP. Effective date: 20150506
2015-05-20	C41	Transfer of patent application or patent right or utility model
2015-05-20	TR01	Transfer of patent right	Effective date of registration: 20150506 Address after: Washington State Patentee after: Micro soft technique license Co., Ltd Address before: Washington State Patentee before: Microsoft Corp.

Publication	Publication Date	Title
CN101681407B (zh)	2013-05-22	用于恶意软件检测的可信操作环境
JP5327757B2 (ja)	2013-10-30	マルウェア検出のための信頼できる動作環境
CN109583193B (zh)	2023-07-04	目标攻击的云检测、调查以及消除的系统和方法
CN101479709B (zh)	2011-06-22	在引导环境中标识恶意软件
KR101359841B1 (ko)	2014-02-07	신뢰성 있는 부트 최적화를 위한 방법 및 장치
US9251350B2 (en)	2016-02-02	Trusted operating environment for malware detection
US7657941B1 (en)	2010-02-02	Hardware-based anti-virus system
US8474032B2 (en)	2013-06-25	Firewall+ storage apparatus, method and system
US9432397B2 (en)	2016-08-30	Preboot environment with system security check
CN103620612B (zh)	2016-04-13	包括端口和来宾域的计算设备
US8549626B1 (en)	2013-10-01	Method and apparatus for securing a computer from malicious threats through generic remediation
CN110348180B (zh)	2021-07-30	一种应用程序启动控制方法和装置
JP6023282B2 (ja)	2016-11-09	マルウェアリスクスキャナー
US8086835B2 (en)	2011-12-27	Rootkit detection
JP2024174895A (ja)	2024-12-17	ファイルのデジタル署名を検証するためのシステム及び方法
JP2020119503A (ja)	2020-08-06	ファイルのデジタル署名の検証における攻撃に対するレジリエンスのためのシステム及び方法
RU91206U1 (ru)	2010-01-27	Аппаратный антивирус